Does AWS IoT allow a certificate for multiple devices?

Question

I'm using dynamoDB to save data from multiple devices and I noticed that only the last connected device that sends the data, never all simultaneous. Then I saw that it was because of the certificates and that I would have to register the devices one by one. But it turns out that I will use more than 10000 devices and it will be almost impossible to register one by one. So if I had a certificate that worked for all devices it would help a lot.

Answer

Hi. You can use one certificate for multiple devices, but it's an anti-pattern. It's best practice to have a unique certificate for every device. This limits blast radius to a single device if a device is compromised.

https://docs.aws.amazon.com/whitepapers/latest/securing-iot-with-aws/provision-iot-devices-and-systems-with-unique-identities-and-credentials.html

AWS has numerous methods of device provisioning that can help you provision devices at scale:

https://d1.awsstatic.com/whitepapers/device-manufacturing-provisioning.pdf

https://docs.aws.amazon.com/iot/latest/developerguide/iot-provision.html

Please review that material and we'd be more than happy to answer subsequent questions.

Does AWS IoT allow a certificate for multiple devices?

관련 콘텐츠